OPENSUSE-SU-2021:3187-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 22 Sept 2021, 13:09
Last modified:07 May 2025, 18:12
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
22 Sept 2021, 13:09
Published
Vulnerability first disclosed
07 May 2025, 18:12
Last Modified
Vulnerability information updated
Description
Security update for samba This update for samba fixes the following issues: - CVE-2021-20277: Fixed an out of bounds read in ldb_handler_fold (bsc#1183574). - CVE-2021-20254: Fixed a buffer overrun in sids_to_unixids() (bsc#1184677). - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs (bsc#1183572). - Spec file fixes around systemd and requires (bsc#1182830) - Fix dependency problem upgrading from libndr0 to libndr1 (bsc#1189875) - Fix dependency problem upgrading from libsmbldap0 to libsmbldap2 (bsc#1189875)
Affected Systems
- opensuse•samba&distro=openSUSE Leap 15.3
< 4.13.6+git.211.555d60b24ba-3.7.1
References (9)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ANLZ3MSWRYNRTSO7FPC7CORZ4WAS3YKE/
- https://bugzilla.suse.com/1182830
- https://bugzilla.suse.com/1183572
- https://bugzilla.suse.com/1183574
- https://bugzilla.suse.com/1184677
- https://bugzilla.suse.com/1189875
- https://www.suse.com/security/cve/CVE-2020-27840
- https://www.suse.com/security/cve/CVE-2021-20254
- https://www.suse.com/security/cve/CVE-2021-20277